Securing your business website with HTTPS isn’t just a good idea, it’s a necessity. Google Chrome now marks HTTP payment and login pages and search pages as insecure if they’re not using HTTPS. Fortunately, Let’s Encrypt makes it both free and easy to lock down your websites.
After countless website security attacks, the Internet Security Research Group (ISRG) started the Let’s Encrypt project in 2015 to make it easy for everyone to secure their websites.
The ISRG’s members includes Akamai, Cisco, Electronic Frontier Foundation (EFF), and Mozilla; the group is managed by The Linux Foundation. The group’s purpose with Let’s Encrypt is to provide free, automated, and open security certificate authority (CA) for everyone’s benefit. Let’s Encrypt enables website owners to obtain security certificates within minutes, enabling a safer web experience for all.
As ISRG executive director Josh Aas said when the group was founded, “Encryption should be the default for the web. The web is a complicated place these days; it’s difficult for consumers to be in control of their data. The only reliable strategy for making sure that everyone’s private data and information is protected while in transit over the web is to encrypt everything.”
It worked. Two years after Let’s Encrypt issued its first certificate, it has today issued more than 100 million certificates. Indeed, Let’s Encrypt is now the biggest CA of them all.
So how can you use it to protect your website?